Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/5smZpwKufYTT6RwgdaN7e_lg1S0.roa
File: 5smZpwKufYTT6RwgdaN7e_lg1S0.roa (raw, json)
Hash identifier: oeOwJ+0O+YcxuFIy/kmVMK5Z6CjtACps/Xn0JTvVSHc=
Subject key identifier: E6:C9:99:A7:02:AE:7D:84:D3:E9:1C:20:75:A3:7B:7B:F9:60:D5:2D
Certificate issuer: /CN=7400d5013c12852242343093cbf5148d4eaeaaf9
Certificate serial: 08817DB0
Authority key identifier: 74:00:D5:01:3C:12:85:22:42:34:30:93:CB:F5:14:8D:4E:AE:AA:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dADVATwShSJCNDCTy_UUjU6uqvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/5smZpwKufYTT6RwgdaN7e_lg1S0.roa
Signing time: Sat 01 Jan 2022 05:59:32 +0000
ROA not before: Sat 01 Jan 2022 05:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24940
IP address blocks: 185.112.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142704048 (0x8817db0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7400d5013c12852242343093cbf5148d4eaeaaf9
Validity
Not Before: Jan 1 05:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6c999a702ae7d84d3e91c2075a37b7bf960d52d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e0:ea:70:bd:2a:eb:ea:94:76:c3:5e:a2:4d:
4d:85:4d:90:b3:6a:05:3f:19:51:4e:1e:6c:8d:27:
a8:71:54:77:ea:4b:07:af:8f:9f:42:9f:03:e3:a6:
a5:22:90:62:26:fd:94:b5:51:c9:ef:25:c1:e6:9a:
2c:28:fb:f4:88:ef:52:d6:1a:15:d3:d9:06:4b:c1:
9b:55:17:56:b1:82:e4:75:b2:e5:c8:57:4f:c3:8e:
fb:20:b2:c5:b0:d3:06:71:28:1e:3c:d9:98:ca:9f:
3a:0a:10:3b:cb:f3:0b:12:13:ed:f8:ee:fc:58:7b:
e1:02:1e:72:d3:a1:9d:d2:54:b2:5e:24:12:06:b7:
4e:45:9e:41:26:3d:88:81:43:1e:e4:89:07:b3:1e:
d5:ab:b2:2b:a8:74:d1:54:8f:64:9e:db:a5:e7:25:
7a:d9:89:de:f2:96:68:14:77:6f:82:a8:2c:05:37:
e2:54:c4:32:0a:e2:b6:3f:7d:a1:7b:2a:c9:19:b7:
2d:44:4e:ac:83:ba:e8:a8:70:55:ac:34:70:33:1f:
fc:48:ad:ef:c3:83:88:a9:30:86:e0:4e:c3:69:f4:
cd:ee:8f:1f:64:18:d4:e6:64:68:3f:31:79:59:7b:
fd:64:7b:14:44:ce:7a:3c:de:ac:ee:f1:77:2b:db:
88:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C9:99:A7:02:AE:7D:84:D3:E9:1C:20:75:A3:7B:7B:F9:60:D5:2D
X509v3 Authority Key Identifier:
keyid:74:00:D5:01:3C:12:85:22:42:34:30:93:CB:F5:14:8D:4E:AE:AA:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dADVATwShSJCNDCTy_UUjU6uqvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/5smZpwKufYTT6RwgdaN7e_lg1S0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/95d71d-f41b-4171-8350-e0892a28aac9/1/dADVATwShSJCNDCTy_UUjU6uqvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.180.0/24
Signature Algorithm: sha256WithRSAEncryption
92:93:4e:f5:cc:d9:3b:53:d7:fc:4d:ab:ef:42:94:bc:d3:52:
33:30:d3:d0:1b:36:8b:c5:cf:30:85:72:52:e8:37:68:6b:62:
ef:6a:ed:31:2c:30:7e:3a:73:40:0d:46:bf:68:f9:d7:0b:fc:
3e:fc:6e:a1:bc:34:c7:d5:49:5d:0c:2b:89:89:dd:2f:93:21:
75:5a:95:9b:cf:24:cd:4d:1c:00:ae:a7:b2:0a:ac:80:c3:36:
3b:4e:9b:f1:eb:80:7c:61:34:49:e9:77:7b:76:ce:ba:1a:1e:
5e:b4:d6:84:90:90:69:e1:d9:9b:f7:39:d1:c0:0d:f2:de:df:
9b:fe:9f:68:5c:97:3f:a1:82:7e:81:05:6e:2a:fe:8d:03:06:
f3:cf:21:9e:c3:67:13:6b:e6:2c:43:07:4b:a0:98:5b:30:84:
14:63:4d:5f:4f:6f:9d:a2:d5:34:2d:f9:92:f0:4c:c0:ce:b1:
f4:f8:c8:21:1c:ac:99:51:d8:4d:05:0a:ab:c2:31:71:18:3a:
db:6a:5d:47:60:c5:af:9e:06:e0:a1:1e:4e:8e:bb:f9:4c:4a:
07:35:03:cf:ec:91:27:b9:d9:05:2b:69:49:9d:91:50:53:01:
dc:f5:15:c6:b8:27:68:fe:4c:81:c1:57:f4:ff:2d:20:0c:36:
e7:14:3d:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:26 2024 by rpki-client on console-fra.rpki-client.org